Understanding the real and ‘fake news’ of GDPR and what you should be doing23rd August 2017
The General Data Protection Regulation (GDPR) has been circling the news a lot lately, informing all businesses and their marketing departments about the new regime. GDPR is a regulation which was created in April of 2016, to be implemented by May of 2018. The aim of the regulation is to strengthen data protection within the European Union and give the power back to citizens, so individuals can control who uses their personal data.
What is GDPR ‘fake news’?
Along with the new publicity about GDPR, there has also been ‘fake news’ rumours spread about GDPR which doesn’t involve anything that will impact UK businesses. These rumours, if believed, can cause huge issues and disruption, and could result in businesses making mistakes which can lead to them being heavily fined.
We want to make it very clear to everyone that they need to be careful when researching GDPR. ‘Fake news’ can cause you to not fully comply, therefore if you have any worries or concerns, just call Griffin House Consultancy – we can ensure your compliance.
Here are some examples of ‘fake news’ items regarding GDPR:
X GDPR is enforced by a new Brussels-based data police force
X GDPR only applies to personally identifiable information (PII)
X Fines are based on 4% of profit (not turnover)
X GDPR is all very new
X The new data rights (like data portability and the right to erasure/right to be forgotten) just won’t be used
X Data processors have no liability
X Organisations outside of the EU have no liability
X GDPR looks good but won’t be enforced
X GDPR doesn’t apply to financial services
X GDPR doesn’t apply to the health sector
X GDPR won’t apply because of Brexit
X GDPR brings in just one set of laws for the whole of Europe – the law will now be exactly the same across the EU
GDPR applies to all businesses, big and small and within every industry that holds personal data. Don’t be mistaken and believe that GDPR doesn’t apply to you, because you will run the risk of being fined by the ICO (Information Commissioner’s Office). We have only listed 12 points of ‘fake news’, however there are many more which aren’t mentioned on this list. GDPR is quite complex, so throwing fake news into the mix makes it even more difficult for businesses to understand.
Jonathan Armstrong, Technology and Compliance Lawyer at Cordery said…
“The danger of GDPR fake news is it just reduces readiness. It is not responsible to speak at an event and tell people to forget about GDPR because Brexit means it will not apply in the UK. There is not a shred of evidence for this and that pronouncement from the ‘expert’ speaker might mean 70 or 80 organisations fail to prepare.”
The ICO is the best online resource to learn about GDPR because they are the people who will be in control of checking compliance. They update their news page on a regular basis, so make sure you keep a look out for information on GDPR.
We are more than happy to help your business get ready for your compliance with GDPR and avoid confusion from ‘fake news’, please contact us at [email protected] or phone us on 01673 885533. We also update our blog page on a regular basis with important information about GDPR, so make sure you visit us soon and get GDPR ready.